cutty.app/MMZd7
172.67.70.33301 Moved Permanently 0 B IP 172.67.70.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /MMZd7 HTTP/1.1
Host: cutty.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 11 Jan 2023 08:38:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 11 Jan 2023 09:38:46 GMT
Location: https://cutty.app/MMZd7
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xpyyZ2mcX4fG82PuS5HD%2FkdExtMdKB4ypWLLJb%2BGCFYvKyZukX%2BbEGj4oEtLxWVVUN%2BZORf12cgqItNtC9RQ9kXx5%2FHukcHBH4kRP4ugFH9YLSZBuod0Qy0Khw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c5689790bb523-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18648
Expires: Wed, 11 Jan 2023 13:49:34 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eecebe0566883e33558e8e67beaccb29
acdd8fd09e2066ed5ecfbc3f11c4a2d61218ecc7
65e21170242bf41eb529fa422385dbe5af65a61e374e6dd5669e7e5f927948af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65E21170242BF41EB529FA422385DBE5AF65A61E374E6DD5669E7E5F927948AF"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2199
Expires: Wed, 11 Jan 2023 09:15:25 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 11 Jan 2023 07:41:47 GMT
content-type: application/json
age: 3419
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d8ccb7b2b89aec333fabc04d37337892
c2a13a42c1bd0cf7ce68d9c13b3d6ba1044b5283
75fcc3ea090454e3489a131b70ab50798fec6a08664745027d7a1cf62c6aba28
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75FCC3EA090454E3489A131B70AB50798FEC6A08664745027D7A1CF62C6ABA28"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19873
Expires: Wed, 11 Jan 2023 14:09:59 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9NTNvpoh5mWW7dBA3dwNxQjyiHppl3vFo7awTn++8SmqYUkEzDPopUPoVt2JoAnlh920CeADOaU=
x-amz-request-id: KZYATYM6R71XR7P8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 11 Jan 2023 08:01:59 GMT
age: 2207
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 659e3110d89dc2db2199ea58d0d84195
1d975525d3a0240629249408926571274bf77b35
005a25274c5cf99600779a748ac7761a52fc207f01f198b41547b58a2ee51ea8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "005A25274C5CF99600779A748AC7761A52FC207F01F198B41547B58A2EE51EA8"
Last-Modified: Mon, 09 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4667
Expires: Wed, 11 Jan 2023 09:56:33 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 659e3110d89dc2db2199ea58d0d84195
1d975525d3a0240629249408926571274bf77b35
005a25274c5cf99600779a748ac7761a52fc207f01f198b41547b58a2ee51ea8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "005A25274C5CF99600779A748AC7761A52FC207F01F198B41547B58A2EE51EA8"
Last-Modified: Mon, 09 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4627
Expires: Wed, 11 Jan 2023 09:55:53 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f20850cdc2ae658ebea4e35856daa5c2
4cf588077a2c48493868eec00c3fcf725667eecc
b5caffa9f65f209cc3e2684e02b758fc4eba5cceeb2f3e2d7c4a667c16ad244f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B5CAFFA9F65F209CC3E2684E02B758FC4EBA5CCEEB2F3E2D7C4A667C16AD244F"
Last-Modified: Mon, 09 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18643
Expires: Wed, 11 Jan 2023 13:49:29 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f20850cdc2ae658ebea4e35856daa5c2
4cf588077a2c48493868eec00c3fcf725667eecc
b5caffa9f65f209cc3e2684e02b758fc4eba5cceeb2f3e2d7c4a667c16ad244f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B5CAFFA9F65F209CC3E2684E02B758FC4EBA5CCEEB2F3E2D7C4A667C16AD244F"
Last-Modified: Mon, 09 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18674
Expires: Wed, 11 Jan 2023 13:50:00 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cuty.io/images/shared/locale-ar.png
172.67.181.253200 OK 21 kB URL HTTP/2 cdn.cuty.io/images/shared/locale-ar.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 811804c93b384a702071194d18c5ffab
b281b885df997fccfca6ee2ccad6dca679fca09e
844ac31e673fa73a526714091e4b31e3214c203e08aebb046ba113d71e679052
GET /images/shared/locale-ar.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 20858
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=51070
content-disposition: inline; filename="locale-ar.webp"
vary: Accept
etag: "63b16742-c77e"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 854366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WYie%2FX6VrYl1GGj2Yn3wX9Qpxh%2FefhuR5syDNTyfk3%2ByMx78D66G6ElgV134ki8co0ZgWNTYp%2B7fRbmTnPaKhSpjeZVTWrhSR66dmjnYCDJ2g7GNKd6IkIxTFV4vOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e1877b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-fr.png
172.67.181.253200 OK 7.3 kB URL HTTP/2 cdn.cuty.io/images/shared/locale-fr.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cc93ee217247413cda270774895caa30
dadc023303b3bd66fc34e727c024a80c00f83ab4
747301c91b3cd0bdfb73d20667dba2e134d5ee1cb0223e915cafe8041547754a
GET /images/shared/locale-fr.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 7294
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=16411
content-disposition: inline; filename="locale-fr.webp"
vary: Accept
etag: "63b16742-401b"
expires: Mon, 01 Jan 2024 10:59:14 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 392903
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OPD8JO50T3xhTFu0QxrR3Rr%2BPK%2BAjW8%2FBi7r9EierIP6e0FFZrxyDbn3TQSAwunSqNl3NLxD0kEhWcDj7av5dFHTLHupCAy0sOpB8Ku1wSIzn3vVa31ijMFIximJtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e187ab4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/locale-es.png
172.67.181.253200 OK 13 kB URL HTTP/2 cdn.cuty.io/images/shared/locale-es.png
IP 172.67.181.253:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash cd2f27e52bb7592e28676a86a3309158
796b9f96cbd568743713d06478e26c8e690e3723
0e656966f1958200ae6fbba050fc6eaebb9b1c60edaaffca31d26525bc59c826
GET /images/shared/locale-es.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/png
content-length: 12579
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-3123"
expires: Fri, 05 Jan 2024 18:18:48 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 390050
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9BPQbuLbG4KDlUxGsXFIVWJuPSaVlWo3Y1VRtCbxMtSg5785mt86hp8S68KTxBoSuVRyaxFjXnziFuGK6E48PX%2FcyBFBQX4pIvReUkWac1r6OofOVfADyk73xP6Lbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e1876b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/payeer.png
172.67.181.253200 OK 1.4 kB URL HTTP/2 cdn.cuty.io/images/public/payeer.png
IP 172.67.181.253:0
File type PNG image data, 167 x 35, 8-bit colormap, non-interlaced\012- data
Hash 076721e6bc9e7ebd04612c544a59e3ce
777b33fdf4ec2212b9613e50d46e203d54163dbb
6602b89e29d6eeb6f85296cffc62529106f8481cb7376a082dc931461844283d
GET /images/public/payeer.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/png
content-length: 1390
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-56e"
expires: Fri, 05 Jan 2024 18:28:34 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 377970
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l4%2FEkRwnh5WM3sCIT3xFJN2lZ8EFU9n7%2B4JOPc3mqGX8JuVfhSrR8GvPm6t7%2FKWaGa9fceetDbjzeqv0bcFAHY3EwpO1Eb8zq21d8b4%2B2z1cxcXPgrx0EDoNgJJiFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e188eb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/bitcoin.png
172.67.181.253200 OK 31 kB URL HTTP/2 cdn.cuty.io/images/public/bitcoin.png
IP 172.67.181.253:0
File type PNG image data, 2000 x 417, 8-bit colormap, non-interlaced\012- data
Hash c072d65a81198a616ea588f4654f1cfb
53ec193adf51c7fcb1a642f680443d90bb3ce91d
391c02102b6a7cce91c572feec8533ecf7b26f7fa1d040ffd940660221abfc4f
GET /images/public/bitcoin.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/png
content-length: 30766
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-782e"
expires: Fri, 05 Jan 2024 18:01:56 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 483843
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cmbtFQ3p883dOxzgI%2F%2B5vXOinnf%2FbNkkaFC2WNJbrtpISwVvEpjpyJiWngWR6RpxwePA6Y7A%2Fy9jBL8oIl71oAvq99yk58f03o0zQmVJKBn26wlGoLD6MqRGFQaQXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e188db4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/facebook-icon.png
172.67.181.253200 OK 170 B URL HTTP/2 cdn.cuty.io/images/shared/facebook-icon.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 92619173676942ddb284d1520af0129c
ae57393f65b60bb02f0324882da4bfcd78a1426a
1d4073de5206d5aec02fedc9178f938e07f91fe49d4ba4ea246b90a800f0b124
GET /images/shared/facebook-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 170
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=409
content-disposition: inline; filename="facebook-icon.webp"
vary: Accept
etag: "63b16742-199"
expires: Mon, 01 Jan 2024 10:59:14 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 854366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OxR2FsE9lFIFWA%2BaYFT%2B3CVk0F7nFLYaEgBIQ96Oz6fOhUECPvvScuvCA5h5jeArx%2Fr01AoDR%2Buu8TrvVQCPKUZC4DmMUqq2mFvG9oDa0vcxHr9dvRYMnPt7uHGhWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e1880b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/money-tree.png
172.67.181.253200 OK 14 kB URL HTTP/2 cdn.cuty.io/images/public/money-tree.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 626352d6c10a1ceb07fd2c015ee635b9
6b08878e47aa4e2d01b19d7946725c940b72bcbb
9b970714e53d7d5997c41c829a228656db9618f78a319c1a5ba5d53586cac0da
GET /images/public/money-tree.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 14144
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=27646
content-disposition: inline; filename="money-tree.webp"
vary: Accept
etag: "63b16742-6bfe"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 854366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7bX%2BoR0%2FEHJR5OOG4SbdDKadguTM3H6zwG2x71uJpfTeg6vcR8C4fpTsJohM%2FCPY42ntWDk7DB%2FdXUf%2F4FCrUn%2FxVBOvTD8cAW09BjNMH280rVl1OaRJbPRKxaKpzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e188cb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/paypal.png
172.67.181.253200 OK 20 kB URL HTTP/2 cdn.cuty.io/images/public/paypal.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cb3c2365bc4ab68c2a218330f9fd0fd7
963ed20ac545ee6feaaa4eb34f67bad4c90cdee2
8d3a352fb65a6e167dac3019fc3e148fc6f82d99df7ad55192019055658035c8
GET /images/public/paypal.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 19980
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=24721
content-disposition: inline; filename="paypal.webp"
vary: Accept
etag: "63b16742-6091"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 854366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AkdnZ9fIV1FCLKzhI3XdQFfXa8F7WTTFp%2FsuRYboReZNxiIZ16PCn5GZs49LJcJnFvVf1T1aqa5UDJ30OA%2FOU%2FXXy8iPGPPYcr%2BFX0kgx%2Bkl1JneHhVTiZAhT6xPpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e1890b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cutty.app/MMZd7
172.67.70.33200 OK 24 kB IP 172.67.70.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17437)
Hash 16b27fc084720dca031fd77e1fb3b9a6
9831415b11ca2d88ad99f817882b49f3325b8857
28f97c6edf0761bd474fd376bc1eacd2ce5378863e5f5e280193f32ddac2c188
GET /MMZd7 HTTP/1.1
Host: cutty.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1
x-frame-options: SAMEORIGIN, SAMEORIGIN
set-cookie: XSRF-TOKEN=eyJpdiI6InR3Y1dBcC8waU5lY2JxQUdTQ29TU3c9PSIsInZhbHVlIjoiV0lRTkxwUkdoR0djeWJyYTAzbUVVdmVucC9wcVBXaGNSUTRPaWRKelhuMG9zcFZnVEIydUk3RGtDSEg3MWxKaVV1ZXlXU3prenVsNWNxcCtSRWVhcFVjTnhNcTM5MSt1L2FweW5EYitHaVFrRlMycEJCenZWbWU5YnEyMjBGUGciLCJtYWMiOiI4NmZlOWEyMTZkZGUyNDhkYzE2NTY2OGI3YzMyNWNlOThkYWQ5Njg3ZWZhNGM4ODUzOTA5ZGY3YjFjNzNkODkwIiwidGFnIjoiIn0%3D; expires=Wed, 18 Jan 2023 08:38:46 GMT; Max-Age=604800; path=/; samesite=lax
cuty_session=eyJpdiI6IkZPdTdQL0paZkQ5WFBscUVIb2xyRFE9PSIsInZhbHVlIjoiZVhLVHJjWEMxcG8vSCtBTkxqcWVNYXlTeVFwci9kbmdXZDUrcjZhVnhOV1QvMVF5aUdINVFJSVhPR0xvMjVObldOZWpKWHJwaXpGRVZjUnRKVWV6RTVnam5RWnJFcDduTHA1VDdZa2h0Wm91WlorVHc1ZE9uVk1iSzVPL0FsUjMiLCJtYWMiOiI5MWEzZjYwOTM0YWU5MGIxMzUxYTMwZGJlZGMwMDU2MzYzYzk1M2Y1OGIzY2M4ZjU2NWJmZmMyMzA3NTQyM2VjIiwidGFnIjoiIn0%3D; expires=Wed, 18 Jan 2023 08:38:46 GMT; Max-Age=604800; path=/; httponly; samesite=lax
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ISWRf4iJUg5PoVu40TtNGHS6b7kFr8hMGCMc8gLBwD7MAYHhcF71W5C36DRuWFCUgGxaKIOf3FIFfr6iwumXm41tcSrTSOFHbyWxBEfFP5jhsAncwH6ZbyIN7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568b3a9bfac4-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/twitter-icon.png
172.67.181.253200 OK 338 B URL HTTP/2 cdn.cuty.io/images/shared/twitter-icon.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 331226924d21ce8f0a925233062c71b7
748c71308741f5a28d16fd7fa5e2520093ad6d14
9c2b2f6b92ebb279b34f7fbcc2bfd81829c036330f015badc93a007d91bd3263
GET /images/shared/twitter-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 338
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=809
content-disposition: inline; filename="twitter-icon.webp"
vary: Accept
etag: "63b16742-329"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 854366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4S1Li9D4lo1l%2Boutp5xZSfZ39XvHm%2FFVbm9dyvOAmopvyN8eKJXIk1ce6aGjbcAaLVgn%2B7%2FuJ2asOGt%2FCWFzQqLFCkyv9rvd3RMQAgqh%2BpKSxpasTxHfhX%2Bi7SciJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e1881b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/airtm.png
172.67.181.253200 OK 1.6 kB URL HTTP/2 cdn.cuty.io/images/public/airtm.png
IP 172.67.181.253:0
File type PNG image data, 173 x 90, 8-bit colormap, non-interlaced\012- data
Hash 7b0b20bc9885600d544beb5507f52790
ff99e3b5e4430ffb2b932a656e618e18f0446ab4
1980165840ae0a9250250bd0ce68b119ac6182ee847b8e3991928a720943d224
GET /images/public/airtm.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/png
content-length: 1558
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-616"
expires: Fri, 05 Jan 2024 18:03:31 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 390050
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ylCy%2FKarPjicafhcSBhXDzgaHBH9R6g%2FwLgXFocj8TC20KuRA1wdSnBpFnGqB9vFka6qLTA6AhWV6ymtqGzx%2FJGr9FqQo1tz%2Fsrm3mGA45QeqsmfcpWEQ4LQqqItxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e1893b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/advcash.png
172.67.181.253200 OK 5.2 kB URL HTTP/2 cdn.cuty.io/images/public/advcash.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d9122c103141e49c1438e1ddb2a53ae5
e52ec053fc378f00b0801bdad231bcf7ae328c4a
9bdb61517912bacfb8d34df7371cf1af713c93a9094b5b27c7e45752b0999b87
GET /images/public/advcash.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 5176
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=8141
content-disposition: inline; filename="advcash.webp"
vary: Accept
etag: "63b16742-1fcd"
expires: Mon, 01 Jan 2024 10:59:14 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 854366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=504%2Ff2d00QzUpEm8O91uwSxURVsiH%2F9Qff6pnynDsvsXynioG0tLuVV5Z91CmfQXA%2B2kt2OXhlI%2Fcl2t0MeunvKYz3lqFJARq5F2tYHobbSxz1PdirgkcCU0Q3N9iw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e1892b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/linkedin-icon.png
172.67.181.253200 OK 88 kB URL HTTP/2 cdn.cuty.io/images/shared/linkedin-icon.png
IP 172.67.181.253:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 97cdaa305fe5c5550de8910320d799fc
d64f75fed751e5c440fdc40fb6e634ee555e8173
eb331aeac999a1242826e84a01ba1f94a267d00df88581b1e1f16a552f9f8c11
GET /images/shared/linkedin-icon.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/webp
content-length: 87734
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=227769
content-disposition: inline; filename="linkedin-icon.webp"
vary: Accept
etag: "63b16742-379b9"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
cf-cache-status: HIT
age: 854366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWAgECkugGTzgBdEf8aPKFAEO9%2BCSZZg3nqnA40SSSPRrq0KKsha%2Bq%2FkW%2FFgaJYkrv%2B6CMVK7NEUvmuzlveA5thDK2DXUU5B%2Bl1FfwSNyifRU0nk%2FkJ1UDeCdoAQ2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e1882b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/perfectMoney.png
172.67.181.253200 OK 202 kB URL HTTP/2 cdn.cuty.io/images/public/perfectMoney.png
IP 172.67.181.253:0
File type PNG image data, 5000 x 1023, 8-bit/color RGBA, non-interlaced\012- data
Size 202 kB (202386 bytes)
Hash 4d75a89e0baae4c6032c0fa68053830f
c9a28f03bf0e3fbbb2807db76921973872d8b390
0e007c0179add623da4b02762178d86c0d3ef3c69e8284b62f8d2e34380e0dbf
GET /images/public/perfectMoney.png HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/png
content-length: 202386
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
etag: "63b4a820-31692"
expires: Fri, 05 Jan 2024 18:13:01 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 377970
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2bsiMoaa02nqsplTWBfYHypDaCSlNt6OuB551FI5sTOZx%2F3pBrFAZUgAUlNZMQisTpazbmPA%2ByopHVaBJh%2Brje9tdAmvY6No3LUmLJBsW8oo8zdxQxJI0IUw0PoWnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e1891b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 39e74fee23bd195e2926cf5241f2fca5
a3361a128141f84053b85994e1a3b2f3e9c9d979
aaa2168872731f90ab7c5d5e98dc17660973582d1b157f4e4a3be4939e99b7e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f634d6f5c8b659b0afaf20bec6a85f0d
171b082c4b0c8a56698d1a4c12e6a1c1d06368d7
18b7d47004423ce90d3638700bea095f4b01fad2b18bf415b0e3957e2092684d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18B7D47004423CE90D3638700BEA095F4B01FAD2B18BF415B0E3957E2092684D"
Last-Modified: Sun, 08 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4392
Expires: Wed, 11 Jan 2023 09:51:58 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 375cec53c9b152feb6dddbaa7e1d0de9
cd930555476fc7215f4cc9633afb16e010ae90b0
269bfd558cf2ebc310b6a12216bcf00e100e7aee79bffcc686db6ae4c14e843a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3673
Cache-Control: max-age=123097
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:46 GMT
Etag: "63bda516-117"
Expires: Thu, 12 Jan 2023 18:50:23 GMT
Last-Modified: Tue, 10 Jan 2023 17:49:10 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9d3d631f824642942edba0387cf019a5
e7605d850d2687eb211769bd17ef706e35845f69
c17f2b3cfedc60003482a6c9f3a692b9a052ae63bd873c28b9532416a1f0b279
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f20850cdc2ae658ebea4e35856daa5c2
4cf588077a2c48493868eec00c3fcf725667eecc
b5caffa9f65f209cc3e2684e02b758fc4eba5cceeb2f3e2d7c4a667c16ad244f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B5CAFFA9F65F209CC3E2684E02B758FC4EBA5CCEEB2F3E2D7C4A667C16AD244F"
Last-Modified: Mon, 09 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18674
Expires: Wed, 11 Jan 2023 13:50:00 GMT
Date: Wed, 11 Jan 2023 08:38:46 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
142.250.74.8200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-GGDCMPL4QP
IP 142.250.74.8:0
File type ASCII text, with very long lines (22462)
Hash e8ae593e47591613864ba2078b8732b4
7f19b2c5d45efe676b6e7447b02edce6d373f0da
6268a8d794c331ba7e51d9c81a7ce19aa715458ab1433335f5fc138cc448388a
GET /gtag/js?id=G-GGDCMPL4QP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jan 2023 08:38:46 GMT
expires: Wed, 11 Jan 2023 08:38:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
216.58.211.4200 OK 552 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 760f8751978f13903fbb5b593bea05c7
3c463f9d47be6cafa5acd0c828a42054054debd3
ba7b03872b122ab1d52e67ee1d6ad77d7749c5504b0c733bd90392d16c509410
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 11 Jan 2023 08:38:46 GMT
date: Wed, 11 Jan 2023 08:38:46 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 552
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nannieslamaic.com/1clkn/60028
23.109.87.124200 OK 26 B URL HTTP/1.1 nannieslamaic.com/1clkn/60028
IP 23.109.87.124:0
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
Analyzer Verdict Alert quad9 Sinkholed
GET /1clkn/60028 HTTP/1.1
Host: nannieslamaic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 08:38:46 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Thu, 12-Jan-2023 08:38:46 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Thu, 12-Jan-2023 08:38:46 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 39e74fee23bd195e2926cf5241f2fca5
a3361a128141f84053b85994e1a3b2f3e9c9d979
aaa2168872731f90ab7c5d5e98dc17660973582d1b157f4e4a3be4939e99b7e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 66b50d58ebed379dc4f68b02c92f59d2
635df6d7900149fd2ce567c9d56f14ee71bb2b41
8092144e087cea4ee21d2a00fa5488225063f57d821ae9fdebe12c4478b08fc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
216.58.207.202200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
IP 216.58.207.202:0
Hash a626b17a588903aebc31ee972955eba0
940333e5992ba6a887a36bb792ca3c68aa70c301
f2a6f929c381e02471022e8778fa9985e65099cf0834c0cca4f7b130cc85bd7c
GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 11 Jan 2023 08:38:46 GMT
date: Wed, 11 Jan 2023 08:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 9a4ba4ab27cd47ead09d38283f795198
cf1d1e13fa427879530cb912e495012a42312b7d
8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cuty.io/images/shared/logo.svg
172.67.181.253200 OK 2.9 kB URL HTTP/2 cdn.cuty.io/images/shared/logo.svg
IP 172.67.181.253:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1008)
Hash 4cd1881eb669650d25c8ec6d2e4c0431
54decdd6fdd34018e38a081e9868faf53163ac1c
0051ad8120a118a232eb70740396c6091972ba6e52d3daec40742ffd47ffa73c
GET /images/shared/logo.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-175a"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 854372
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5jKyG6FrqRJTM5VNT5l8Bt07LuPOPJNFt2FQ1Hal94JZQZD5cYOFh8HwrMd3q7m5rXrEmqs03B%2BGTlZsgF2FnLOxsG2sfamqHwWpkjfGlXlKlx5D0RSTwRyIjbFpow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e1884b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/arrow-down.svg
172.67.181.253200 OK 633 B URL HTTP/2 cdn.cuty.io/images/shared/arrow-down.svg
IP 172.67.181.253:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 4abcb165c63ea9613ff06ebd51f22ca3
4e9cd6ce5b52776130b2efa9f62e01c5175a300c
5d897529f52b6da0f9ae9fc4077c7a9b769153000d8f743bfd59e39283fb7f68
GET /images/shared/arrow-down.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-dc"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 854372
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LP7zrfGkMYtxgqV3z2O6hjCe7lsSxEcqw%2B0JDKYFN%2BnjEvjcmx2TbxpZoe7ZqiS%2B2SKrO%2FjYQR6FVCjZ46uxZTj5dDIi4i9qfqb2tzfpdm5tmrY3a96oaA4TqDEaUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e1895b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 375cec53c9b152feb6dddbaa7e1d0de9
cd930555476fc7215f4cc9633afb16e010ae90b0
269bfd558cf2ebc310b6a12216bcf00e100e7aee79bffcc686db6ae4c14e843a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3674
Cache-Control: max-age=123097
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Etag: "63bda516-117"
Expires: Thu, 12 Jan 2023 18:50:24 GMT
Last-Modified: Tue, 10 Jan 2023 17:49:10 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=96f99eb999cd74feab6f9d125a89f048
172.67.181.253200 OK 39 kB URL HTTP/2 cdn.cuty.io/js/public/layouts/_partials/nav-links.js?id=96f99eb999cd74feab6f9d125a89f048
IP 172.67.181.253:0
File type ASCII text, with very long lines (2935), with no line terminators
Hash 044b7e8d4c6dfc933dab74aa37c9d3bb
8960a3e6c56538278e1b19541c51bc0f2da536f8
6ed0f14f9fcc4c3ea0f15e60dd8c1f1beaba01cfc5301c88d7cb3b5bf51532b3
GET /js/public/layouts/_partials/nav-links.js?id=96f99eb999cd74feab6f9d125a89f048 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"63b4a820-b77"
expires: Wed, 03 Jan 2024 22:11:46 GMT
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 642252
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vXAuLdH26t%2FmOQ1lnVffhr7aIr0D%2B8qMIgGT55R6e7xEnlg%2B2Un6zPLbZBbr2A%2Flw8uV58C7XP6B8KY07tXCcZ9rhgscPACaSmJjZMVHj0xWEjGcjQIib7TLa3ULyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e68e9b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/e/e.js?e=ll&d=455&cs=c&dsReferer=Y3V0dHkuYXBwL01NWmQ3
104.16.133.22200 OK 0 B URL HTTP/2 live.demand.supply/e/e.js?e=ll&d=455&cs=c&dsReferer=Y3V0dHkuYXBwL01NWmQ3
IP 104.16.133.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /e/e.js?e=ll&d=455&cs=c&dsReferer=Y3V0dHkuYXBwL01NWmQ3 HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:47 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "e11f25735db9ddc62adb36e2e1846234-ssl"
x-nf-request-id: 01GNH5VQZCDDVTPFB7T2W7TM18
cf-cache-status: HIT
age: 809104
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c569029290b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 9a4ba4ab27cd47ead09d38283f795198
cf1d1e13fa427879530cb912e495012a42312b7d
8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 11 Jan 2023 08:17:24 GMT
age: 1283
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
live.demand.supply/x/e.js?ce=fs&dsReferer=Y3V0dHkuYXBwL01NWmQ3
104.16.133.22200 OK 0 B URL HTTP/2 live.demand.supply/x/e.js?ce=fs&dsReferer=Y3V0dHkuYXBwL01NWmQ3
IP 104.16.133.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /x/e.js?ce=fs&dsReferer=Y3V0dHkuYXBwL01NWmQ3 HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:47 GMT
content-type: application/javascript; charset=UTF-8
content-length: 1
access-control-allow-origin: *
cache-control: s-maxage=2592000,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=2
etag: "e11f25735db9ddc62adb36e2e1846234-ssl"
x-nf-request-id: 01GNN40JMWXW15DE1R3FSH39KR
cf-cache-status: HIT
age: 809101
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c5690795a0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a831a999b5e598b4e9f4e31e8054ca7c
9971a4a806f48777ae6d9525085d16d0c6314c51
cdffa8dd48e75baa98670f82dfac2b3948667ca32dd93f469d2cd49d3a58581c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 871
Cache-Control: max-age=88954
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Etag: "63bd2aaa-1d7"
Expires: Thu, 12 Jan 2023 09:21:21 GMT
Last-Modified: Tue, 10 Jan 2023 09:06:50 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
216.58.211.3200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Jan 2023 05:56:49 GMT
expires: Mon, 08 Jan 2024 05:56:49 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 268918
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.34200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (39228)
Hash 0918c3f86c6f5a280f2045a785c99232
43be681dbad217044afd30f8c4b6daa10eeef8b9
aadb9055ce397de37d0100b54a343252865c0f4a294f4c41975325c10ec1effc
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27744
date: Wed, 11 Jan 2023 08:38:47 GMT
expires: Wed, 11 Jan 2023 08:38:47 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1448 / 172 of 1000 / last-modified: 1673392045"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.66200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 11 Jan 2023 08:38:47 GMT
expires: Wed, 11 Jan 2023 08:38:47 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16757317927078120859
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49267
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 681 B IP 216.58.211.3:0
Hash 7f292ffa7b27681df19d3e9676bb8690
84fe62fc4671652a4508678ec3d1969fd81464cf
358d912534c5722778c44245a9da745300c449d4520dffabd1638e6bc360cabb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/gpt/pubads_impl_2023010901.js?cb=31071543
142.250.74.34200 OK 132 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2023010901.js?cb=31071543
IP 142.250.74.34:0
File type ASCII text, with very long lines (65395)
Size 132 kB (132144 bytes)
Hash 1e6dd4e4204baf9b9554ed0b27ae9244
92a9b9f6bf7a8fa19ebd7117c90c9ca20d22c286
39f4fff05e616703594d1b4faff24747e18b166ac19a61e6b119d98d0bc8b17f
GET /gpt/pubads_impl_2023010901.js?cb=31071543 HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 132144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 08:34:38 GMT
expires: Thu, 11 Jan 2024 08:34:38 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 09 Jan 2023 09:38:07 GMT
content-type: text/javascript
age: 249
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/layouts/app.js?id=7cdf80825c38c29dda4b0e5e94baec41
172.67.181.253200 OK 101 kB URL HTTP/2 cdn.cuty.io/js/public/layouts/app.js?id=7cdf80825c38c29dda4b0e5e94baec41
IP 172.67.181.253:0
File type Unicode text, UTF-8 text, with very long lines (65487), with no line terminators
Size 101 kB (100693 bytes)
Hash 9361b2e2b87a0bba489898e401276ea9
8adab0f0256379e66ae58fa9d6634c1e43b88d1b
8b6d3adbfaf5319cb1e5da8c03f2212e4540d69ce5102afa541abe7d65bde557
GET /js/public/layouts/app.js?id=7cdf80825c38c29dda4b0e5e94baec41 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=342887
etag: W/"63b4a820-53b67"
expires: Wed, 03 Jan 2024 22:11:46 GMT
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 642252
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HvF9Y%2Fv4jxSTts20GU2F2wuNOPqzpFQeg%2BJDbtWu7TvSD4WNvLWJ2%2FIY9pu3SIFHRyeSfKaoV%2F4UPZuVZ7%2FvsXBtHGy35E9PY5KcTnjf960SaVH7Tx7OxBqo9VUiVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e68eab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.24.78.9101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.24.78.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BInwayRkuk+JDgwHzU5D5w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zwNgGJcVhYadtje8H0DteoYa9mU=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ee335bb2a20e83a137dedff2ff1f54b7
388a3728c5900302ff6cf2f1e27bcb12e8896b05
9ebf03e142fa0c5477430d456f614d9cea75229b2b3aa8643e0051e0fe760476
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 445fa7d43051008e7c15b091b06c6a2e
d8718a8652b60cb440eba43679e156d9adb0b172
8eb807ca7befd8418c90ed751edad489785cbf2f876795be5a70cff7db94872d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=cutty.app
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=cutty.app
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cutty.app HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 11 Jan 2023 08:38:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=cutty.app
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=cutty.app
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cutty.app HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 11 Jan 2023 08:38:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ee335bb2a20e83a137dedff2ff1f54b7
388a3728c5900302ff6cf2f1e27bcb12e8896b05
9ebf03e142fa0c5477430d456f614d9cea75229b2b3aa8643e0051e0fe760476
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 445fa7d43051008e7c15b091b06c6a2e
d8718a8652b60cb440eba43679e156d9adb0b172
8eb807ca7befd8418c90ed751edad489785cbf2f876795be5a70cff7db94872d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023010901&st=env
142.250.74.66200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023010901&st=env
IP 142.250.74.66:0
File type JSON data\012- , ASCII text, with very long lines (14710), with no line terminators
Hash 3a7fefb2f8ea792cdabe769ce7953b56
78f958fa795f642c96c2e77d638f5624f2cec17d
8a3633df255116423c696f86da4f3780fc0171add54e1e9d415c30a5af430b18
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023010901&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Wed, 11 Jan 2023 08:38:47 GMT
server: cafe
content-length: 11103
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
216.58.207.193200 OK 2.7 kB URL HTTP/2 3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Wed, 11 Jan 2023 08:38:47 GMT
expires: Thu, 11 Jan 2024 08:38:47 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c6b0c791541b73984100978c2d9efb6b
15ca4bb1a0ce8b91da58f88362974445a5d936ec
f5cf7f17bd879b71a5aa58837e8d09e90ff8c44ebfa98ac505c5ec555654a6d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-GGDCMPL4QP>m=2oe190&_p=1795635407&cid=1928039742.1673426313&ul=en-us&sr=1280x1024&_s=1&sid=1673426312&sct=1&seg=0&dl=https%3A%2F%2Fcutty.app%2FMMZd7&dt=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-GGDCMPL4QP>m=2oe190&_p=1795635407&cid=1928039742.1673426313&ul=en-us&sr=1280x1024&_s=1&sid=1673426312&sct=1&seg=0&dl=https%3A%2F%2Fcutty.app%2FMMZd7&dt=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-GGDCMPL4QP>m=2oe190&_p=1795635407&cid=1928039742.1673426313&ul=en-us&sr=1280x1024&_s=1&sid=1673426312&sct=1&seg=0&dl=https%3A%2F%2Fcutty.app%2FMMZd7&dt=Shorten%20Links%20And%20Earn%20Money%20%7C%20Cuty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://cutty.app
date: Wed, 11 Jan 2023 08:38:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
216.58.211.1200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 11 Jan 2023 08:38:47 GMT
expires: Wed, 11 Jan 2023 08:38:47 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
216.58.211.1200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 216.58.211.1:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Jan 2023 05:59:29 GMT
expires: Mon, 08 Jan 2024 05:59:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 268758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8bc8c56806aa324d1483e477deccb084
112e7592bd37462071114cfd4b52ca68ffdeed27
eb1e78fe8e98e58bdfbb3bd0e2aaddf83212993d8d9f1bbacc420a9fa653c41a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8bc8c56806aa324d1483e477deccb084
112e7592bd37462071114cfd4b52ca68ffdeed27
eb1e78fe8e98e58bdfbb3bd0e2aaddf83212993d8d9f1bbacc420a9fa653c41a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8bc8c56806aa324d1483e477deccb084
112e7592bd37462071114cfd4b52ca68ffdeed27
eb1e78fe8e98e58bdfbb3bd0e2aaddf83212993d8d9f1bbacc420a9fa653c41a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8bc8c56806aa324d1483e477deccb084
112e7592bd37462071114cfd4b52ca68ffdeed27
eb1e78fe8e98e58bdfbb3bd0e2aaddf83212993d8d9f1bbacc420a9fa653c41a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 1.3 kB IP 216.58.211.3:0
File type gzip compressed data, max compression\012- data
Hash 6246ae5ca30ed77e069f5ff5a3f64581
eefb8b8d07fcfafa68f7ea0a0b9049b4e4af1617
28196c96ddfe68e5da8b3ce54f5e82278383e71fe49ee8a49b21d57b618a6db8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211111611000/amp4ads-v0.mjs
172.217.21.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012211111611000/amp4ads-v0.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 04f51ecd1145e2a86f75693638033e72
c265ee60679b26cff4f67ce23f8545872bdf9108
b8aecb976ed25e39dd1f7948b011a7d103ada56a96502bee59ecf8563b256c0e
GET /rtv/012211111611000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61575
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:12:53 GMT
expires: Tue, 09 Jan 2024 18:12:53 GMT
cache-control: public, max-age=31536000
etag: "096ddbd6e6cd221e"
content-type: text/javascript; charset=UTF-8
age: 138355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211111611000/v0/amp-ad-exit-0.1.mjs
172.217.21.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012211111611000/v0/amp-ad-exit-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (14697)
Hash f14b342f576d5f85203de28ee21283d0
255313e712407ecea7361d12c174533382204830
08cea910862daf4780fe9b416386c2eedb3d0755fa2a2193c0724c177d1bbde7
GET /rtv/012211111611000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5201
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:12:53 GMT
expires: Tue, 09 Jan 2024 18:12:53 GMT
cache-control: public, max-age=31536000
etag: "0e2d67a193799b94"
content-type: text/javascript; charset=UTF-8
age: 138355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211111611000/v0/amp-analytics-0.1.mjs
172.217.21.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012211111611000/v0/amp-analytics-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (65534)
Hash f3b1e3a52e16bb4c5dfe9a948ffac11e
2fab3f281c2d24431c17cbdd3834a685e4513bc4
63669d2ca2c163aa26310218168dae7eed5930ab94dc1f651b7ef8300ff5dcdc
GET /rtv/012211111611000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28866
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:12:53 GMT
expires: Tue, 09 Jan 2024 18:12:53 GMT
cache-control: public, max-age=31536000
etag: "61003bcde0ed5887"
content-type: text/javascript; charset=UTF-8
age: 138355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211111611000/v0/amp-fit-text-0.1.mjs
172.217.21.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012211111611000/v0/amp-fit-text-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (5046)
Hash 70ae6e1dcdf10414758c604fea8c5ce5
c967455f8b302e1b05e6884a5d074f2027f64d3a
8ecd8cb788207fa2bb03ad7c5d8824a2dbe409e8658141f92d2b752b5ea82e09
GET /rtv/012211111611000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cutty.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1906
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:12:53 GMT
expires: Tue, 09 Jan 2024 18:12:53 GMT
cache-control: public, max-age=31536000
etag: "d44263764bdab45e"
content-type: text/javascript; charset=UTF-8
age: 138355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8bc8c56806aa324d1483e477deccb084
112e7592bd37462071114cfd4b52ca68ffdeed27
eb1e78fe8e98e58bdfbb3bd0e2aaddf83212993d8d9f1bbacc420a9fa653c41a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
216.58.207.227200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cutty.app
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jan 2023 20:35:00 GMT
expires: Thu, 04 Jan 2024 20:35:00 GMT
cache-control: public, max-age=31536000
age: 561828
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94a94f71182f59097f270d6de9920572
ab66b18bfc832a830a99dbed7a919eb6b42f9a51
67b3c6cb78055e1688752006d8f0903849deaa0ac116ab1c4546c83c7999283c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67B3C6CB78055E1688752006D8F0903849DEAA0AC116AB1C4546C83C7999283C"
Last-Modified: Mon, 09 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3858
Expires: Wed, 11 Jan 2023 09:43:06 GMT
Date: Wed, 11 Jan 2023 08:38:48 GMT
Connection: keep-alive
id5-sync.com/api/esp/increment?counter=no-config
162.19.138.119204 0 B URL HTTP/1.1 id5-sync.com/api/esp/increment?counter=no-config
IP 162.19.138.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/esp/increment?counter=no-config HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://cutty.app
access-control-allow-credentials: true
date: Wed, 11 Jan 2023 08:38:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
googleads.g.doubleclick.net/xbbe/pixel?d=CO-t7QIQtrWInAQY1qPQ3QEwAQ&v=APEucNUSFS_vsQWkWLjq401R_p8iDCpaP1M4FzRpXmbzO14OtE_EpH0gViCDd8-dE530rp9W36mHnmp5GiRjLvdQfAid85ShV3uBiOpcAfpfafPM-AQr5h_800hJZWhmI6Nhp0iNznTaZIUl65-uKKhWVS1clz-OjD44QPx_TGyIP_QSnzCVmyNa5iA-liJKMnK4tH7Tc_zR1JJsiLpZmXiP4sYmK1GijQ
142.250.74.98200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CO-t7QIQtrWInAQY1qPQ3QEwAQ&v=APEucNUSFS_vsQWkWLjq401R_p8iDCpaP1M4FzRpXmbzO14OtE_EpH0gViCDd8-dE530rp9W36mHnmp5GiRjLvdQfAid85ShV3uBiOpcAfpfafPM-AQr5h_800hJZWhmI6Nhp0iNznTaZIUl65-uKKhWVS1clz-OjD44QPx_TGyIP_QSnzCVmyNa5iA-liJKMnK4tH7Tc_zR1JJsiLpZmXiP4sYmK1GijQ
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CO-t7QIQtrWInAQY1qPQ3QEwAQ&v=APEucNUSFS_vsQWkWLjq401R_p8iDCpaP1M4FzRpXmbzO14OtE_EpH0gViCDd8-dE530rp9W36mHnmp5GiRjLvdQfAid85ShV3uBiOpcAfpfafPM-AQr5h_800hJZWhmI6Nhp0iNznTaZIUl65-uKKhWVS1clz-OjD44QPx_TGyIP_QSnzCVmyNa5iA-liJKMnK4tH7Tc_zR1JJsiLpZmXiP4sYmK1GijQ HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 11 Jan 2023 08:38:48 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 11-Jan-2023 08:53:48 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 11 Jan 2023 08:38:48 GMT
cache-control: private
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Wed, 11 Jan 2023 10:22:39 GMT
Date: Wed, 11 Jan 2023 08:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Wed, 11 Jan 2023 10:22:39 GMT
Date: Wed, 11 Jan 2023 08:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Wed, 11 Jan 2023 10:22:39 GMT
Date: Wed, 11 Jan 2023 08:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Wed, 11 Jan 2023 10:22:39 GMT
Date: Wed, 11 Jan 2023 08:38:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82b10434cd29773d0f2f05a9904bd8d7
254f8d0a30d61afe871b7d603d4f0669bfb59808
5955b48e68572fd477fbb1bf172c3d590320b7408668a7fc586022362dd7447d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8395
x-amzn-requestid: 13f52de6-c624-4005-8c98-b8299ce3d156
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei75DGBwIAMFU3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9d3-278ee7ad4b30336e2ada7970;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2pOcdK8bVXyEoZvhn6X6jYWBA53UY_zuNExfPEMaVxuPuWeNyEGjCA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:47:53 GMT
age: 39055
etag: "254f8d0a30d61afe871b7d603d4f0669bfb59808"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56de8a53fb494855ff7717eeb39c1fed
438999ac8d0853e235a2c0e0f404291961c891ab
357db338b2f6fcf434bdd9c2561f91d3fc7e5d42a92e5068402ce3eeb6fba412
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6400
x-amzn-requestid: f76c3961-a118-4639-a943-2ffbd3d28537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eaD7hEEdoAMFs5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba4d16-3881379864dcae085aa4fd4d;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 04:56:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mYQfpwVDSCnen6utBvdBBOmlxS0gGhOqIg8YZ1D0Bt2Ii9O07L9G9A==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 07:56:16 GMT
age: 2552
etag: "438999ac8d0853e235a2c0e0f404291961c891ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15770463-febf-46fb-8a4d-1a4f297b5a7b.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15770463-febf-46fb-8a4d-1a4f297b5a7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d11194f94b91e55e976fc5d704afa55
eb6c7b73b80d2d41e6e4801a0b671e2a5c1cdf5b
66b01e33e1bc18d18e187632738f8ff49ef58a2d054367173c0570b7caa76260
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15770463-febf-46fb-8a4d-1a4f297b5a7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4116
x-amzn-requestid: 64c7b71c-74a5-4304-bab5-305de0e4c9d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eON3PHCaoAMF_Zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b5902e-72ada40c0419baa7763c2441;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 14:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wrpetZbXyS3pCR4ZBK2XXJRHbg652psant3gpl9ALVEZcfPE1ez8xw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 04:19:34 GMT
age: 15554
etag: "eb6c7b73b80d2d41e6e4801a0b671e2a5c1cdf5b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bb42924-de42-4772-9668-d2cdea9ffc34.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bb42924-de42-4772-9668-d2cdea9ffc34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 88a5b6a852d2139e5a0d44aa0d199ed9
910accaca2e49f987a3aee63aa3ad8de8298a052
c35524983062df09cb7a323db476deebfd8c34c053d49d6651e17e9ca5ef561a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bb42924-de42-4772-9668-d2cdea9ffc34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9177
x-amzn-requestid: 147b1cb1-4b0c-4b26-adca-fd3a881e5fb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egZ_-H-vIAMFaoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6cc-048126f849e408c32ae7d289;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:09:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KRgnQjCgLSmDfOzv45W6FIAxN5J1mYyWfHCV4rkWBztOSZZgGPzpYg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 03:19:11 GMT
age: 19177
etag: "910accaca2e49f987a3aee63aa3ad8de8298a052"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6836f9-47c0-4072-8841-9838455af78e.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6836f9-47c0-4072-8841-9838455af78e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 739d7b6363767151f0dfda26339c03cb
5f1c3e27d48f83326202e300331825537cc84189
8d460467f4c61ecd4b44d910afa13688e9bd2f36762f79ad3cdd025eede65f8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6836f9-47c0-4072-8841-9838455af78e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12862
x-amzn-requestid: a947df07-a29c-4e5e-98ec-724b6a1a439d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ecM0gFZ2IAMF-yQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb281c-00ccdc2017f0288f2037c971;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 20:31:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e4o8U4sRwSYjR5JCvxCnupuhVJk7N0KYSd2jBKjsDhzGovgfRtiKxg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 13:21:28 GMT
age: 69440
etag: "5f1c3e27d48f83326202e300331825537cc84189"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 68af9d9acdc08345ac38ae59f83a9a24
d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee
1ae2e194f6bb20166d326002b39a4e3f44a9a97046e77ffd2a186eae384b7ce1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10640
x-amzn-requestid: 0b0b6732-7692-4b35-9625-154dc39386dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei745GEooAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9d2-314dad90600e9d8c737adf05;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZR6BWnywdcRk5KkmuuMtlIgFKqD_IHiv9jSum7TsjPo5US-gkn7Z-w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:43:43 GMT
etag: "d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee"
content-type: image/jpeg
age: 39305
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
t.6sc.co/img.gif?event=imp&mcid=88525&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=88525&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=88525&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "615ccf16-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Tue, 05 Oct 2021 22:17:58 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be635800000058ce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
t.6sc.co/img.gif?event=imp&mcid=69941&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=69941&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=69941&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "60bb2e1b-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Sat, 05 Jun 2021 07:56:11 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be635900000059ce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
t.6sc.co/img.gif?event=imp&mcid=84453&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=84453&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=84453&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "5e502814-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Fri, 21 Feb 2020 18:57:24 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be635f0000005ace1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
t.6sc.co/img.gif?event=imp&mcid=84454&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=84454&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=84454&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "5e502814-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Fri, 21 Feb 2020 18:57:24 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be63600000005bce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
t.6sc.co/img.gif?event=imp&mcid=84452&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=84452&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=84452&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "60bb2e1b-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Sat, 05 Jun 2021 07:56:11 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be63610000005cce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
t.6sc.co/img.gif?event=imp&ppgid=86d67b6c&cb=3322313619
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&ppgid=86d67b6c&cb=3322313619
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&ppgid=86d67b6c&cb=3322313619 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "5e502814-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Fri, 21 Feb 2020 18:57:24 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be63620000005dce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f8395eadf53bcf58328ffa636f943a44
47ffbf341873e182b5e1494033f1962c689c854a
ada129a2cb61c44093addd356a3d038fdb2e6346174bd2c40824e3193fe13928
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssLRIqAM3NzQJtvPSF6ICRwqOT5zO3X5RZy1iRAygNIr5pFhIgCfYMDpFs0-pVRzteOg3_7o-UGYFNlea1FBFutUAn0VcveR6VPbMjoEDi5Y7Izm9yI_YW3a_2C-uewFcDXEByPae1sdVeKQeBn9R5hbYn26QIXWw9TKDQUeWw8p61eHRD3WTEIpdGsnYuuA0Vcc69P-yNSwb7apuPl6BWY6qp-jrzMaEpmRQ3KcjgREnuzqjd-UB0mlh3igr_zX6Xws4S8nqP-UwwX2DNbYqDQ9C6nTH_3n-MyyGtlMDVNkJ91g380ESQuUiZehKFKH5CmLrP3xD3lBo5SL4RwQJ5ObU8NvyiS5jFPUf6UmHYUzK4b8ogDXp6-mPm7iCmxUHQWHu0fxTvrdDui4uX2ClEyPa8kBARteM1T6_YvyHPp7-KI2qn0g_Q2ppAaFsH4G3mqckD2IW0io81T0vP6VdFOloP9zlxHWEfNq2Ys3M841_DcR2ARggrD-FzFj9HEHGYgnvBRHpsy-42OLGsY8wfyIYI5-6EZFZkcHhq9Uc8CJbk1dg4QkT4ag2WZ2FgFF1ktQLKJzxMIiAl8l2D9RnUDaXKOHNgv1DBcMExnL0sLDy3NJcAQPiQOxykLrKjn607h4nFggVnjzh85ioBz1pMGPl__srl5hSbOzjkJSHEs7VP2OoEZC8JNgUT35foHRdowFAdRjhtBhRPXau9ggE_nUbYjdqandPkqekGezIHN3G7hC54CInJtV-rdz-lQzaAhExc_cRjnWs-stu-3D-1V28eP-gXuFEVR6chwOhfGRm06pAwY6R-RRw4ZsTHf457AyR0tsSwPgiNhFLKhnhqDmBN1vtYcUZ5Zjo6Wq4XHR8ZiFdZUGrEbO14HId3otXWF8tWj3ACrDWn-fmuy9HUEbtJ34ywdR9A4LpJue2-QNc2oHT9FBmCK5NUGLWMvG4Odby1rfSvPIdcZa56sM9xDQWlD4AtYrBLMkq5YsVSp_sW0vrgT8WsZp0DEcvX_jDIuNGiNXw0OgkQgAZn2-lysAeeX0g4auskXOOl50iocm5sSbjW0cRC_teBBRkLkLfTmoKx83_CAkZM52bIaEbwwet4BZW9_HcJl_QpQHqCJ5Q&sai=AMfl-YSRnxWtZxydY33pg8aIp7QbXchZhZejg47hG-ua0Xqn_NEykNfewWJx__nUrz3Ig5Fh0MogXZ317Psz4tS7TK6E9-BxTEeFiZEWoPnfzepoR-F3hnt_SdDAP7K-qBf-Oozf-CtnaR_terXFwV4PsOEvOoO8O19f62sPLNlNuIwWyo6iFFwgRpEDMBglBtr2z43pqfkelU6VRS3raDY7SgQXn4UuHk8RBPfOcvImPB2PY01yVhhcd2i970pWvYAXhbyeFd4VcJjkjXNrVLTqjsFpigRUXutwTpUBLp7VVmk9e83X&sig=Cg0ArKJSzLgB74tETQeyEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20230109.23646&arae=0&ftch=1&adurl=
216.58.207.194200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssLRIqAM3NzQJtvPSF6ICRwqOT5zO3X5RZy1iRAygNIr5pFhIgCfYMDpFs0-pVRzteOg3_7o-UGYFNlea1FBFutUAn0VcveR6VPbMjoEDi5Y7Izm9yI_YW3a_2C-uewFcDXEByPae1sdVeKQeBn9R5hbYn26QIXWw9TKDQUeWw8p61eHRD3WTEIpdGsnYuuA0Vcc69P-yNSwb7apuPl6BWY6qp-jrzMaEpmRQ3KcjgREnuzqjd-UB0mlh3igr_zX6Xws4S8nqP-UwwX2DNbYqDQ9C6nTH_3n-MyyGtlMDVNkJ91g380ESQuUiZehKFKH5CmLrP3xD3lBo5SL4RwQJ5ObU8NvyiS5jFPUf6UmHYUzK4b8ogDXp6-mPm7iCmxUHQWHu0fxTvrdDui4uX2ClEyPa8kBARteM1T6_YvyHPp7-KI2qn0g_Q2ppAaFsH4G3mqckD2IW0io81T0vP6VdFOloP9zlxHWEfNq2Ys3M841_DcR2ARggrD-FzFj9HEHGYgnvBRHpsy-42OLGsY8wfyIYI5-6EZFZkcHhq9Uc8CJbk1dg4QkT4ag2WZ2FgFF1ktQLKJzxMIiAl8l2D9RnUDaXKOHNgv1DBcMExnL0sLDy3NJcAQPiQOxykLrKjn607h4nFggVnjzh85ioBz1pMGPl__srl5hSbOzjkJSHEs7VP2OoEZC8JNgUT35foHRdowFAdRjhtBhRPXau9ggE_nUbYjdqandPkqekGezIHN3G7hC54CInJtV-rdz-lQzaAhExc_cRjnWs-stu-3D-1V28eP-gXuFEVR6chwOhfGRm06pAwY6R-RRw4ZsTHf457AyR0tsSwPgiNhFLKhnhqDmBN1vtYcUZ5Zjo6Wq4XHR8ZiFdZUGrEbO14HId3otXWF8tWj3ACrDWn-fmuy9HUEbtJ34ywdR9A4LpJue2-QNc2oHT9FBmCK5NUGLWMvG4Odby1rfSvPIdcZa56sM9xDQWlD4AtYrBLMkq5YsVSp_sW0vrgT8WsZp0DEcvX_jDIuNGiNXw0OgkQgAZn2-lysAeeX0g4auskXOOl50iocm5sSbjW0cRC_teBBRkLkLfTmoKx83_CAkZM52bIaEbwwet4BZW9_HcJl_QpQHqCJ5Q&sai=AMfl-YSRnxWtZxydY33pg8aIp7QbXchZhZejg47hG-ua0Xqn_NEykNfewWJx__nUrz3Ig5Fh0MogXZ317Psz4tS7TK6E9-BxTEeFiZEWoPnfzepoR-F3hnt_SdDAP7K-qBf-Oozf-CtnaR_terXFwV4PsOEvOoO8O19f62sPLNlNuIwWyo6iFFwgRpEDMBglBtr2z43pqfkelU6VRS3raDY7SgQXn4UuHk8RBPfOcvImPB2PY01yVhhcd2i970pWvYAXhbyeFd4VcJjkjXNrVLTqjsFpigRUXutwTpUBLp7VVmk9e83X&sig=Cg0ArKJSzLgB74tETQeyEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20230109.23646&arae=0&ftch=1&adurl=
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjssLRIqAM3NzQJtvPSF6ICRwqOT5zO3X5RZy1iRAygNIr5pFhIgCfYMDpFs0-pVRzteOg3_7o-UGYFNlea1FBFutUAn0VcveR6VPbMjoEDi5Y7Izm9yI_YW3a_2C-uewFcDXEByPae1sdVeKQeBn9R5hbYn26QIXWw9TKDQUeWw8p61eHRD3WTEIpdGsnYuuA0Vcc69P-yNSwb7apuPl6BWY6qp-jrzMaEpmRQ3KcjgREnuzqjd-UB0mlh3igr_zX6Xws4S8nqP-UwwX2DNbYqDQ9C6nTH_3n-MyyGtlMDVNkJ91g380ESQuUiZehKFKH5CmLrP3xD3lBo5SL4RwQJ5ObU8NvyiS5jFPUf6UmHYUzK4b8ogDXp6-mPm7iCmxUHQWHu0fxTvrdDui4uX2ClEyPa8kBARteM1T6_YvyHPp7-KI2qn0g_Q2ppAaFsH4G3mqckD2IW0io81T0vP6VdFOloP9zlxHWEfNq2Ys3M841_DcR2ARggrD-FzFj9HEHGYgnvBRHpsy-42OLGsY8wfyIYI5-6EZFZkcHhq9Uc8CJbk1dg4QkT4ag2WZ2FgFF1ktQLKJzxMIiAl8l2D9RnUDaXKOHNgv1DBcMExnL0sLDy3NJcAQPiQOxykLrKjn607h4nFggVnjzh85ioBz1pMGPl__srl5hSbOzjkJSHEs7VP2OoEZC8JNgUT35foHRdowFAdRjhtBhRPXau9ggE_nUbYjdqandPkqekGezIHN3G7hC54CInJtV-rdz-lQzaAhExc_cRjnWs-stu-3D-1V28eP-gXuFEVR6chwOhfGRm06pAwY6R-RRw4ZsTHf457AyR0tsSwPgiNhFLKhnhqDmBN1vtYcUZ5Zjo6Wq4XHR8ZiFdZUGrEbO14HId3otXWF8tWj3ACrDWn-fmuy9HUEbtJ34ywdR9A4LpJue2-QNc2oHT9FBmCK5NUGLWMvG4Odby1rfSvPIdcZa56sM9xDQWlD4AtYrBLMkq5YsVSp_sW0vrgT8WsZp0DEcvX_jDIuNGiNXw0OgkQgAZn2-lysAeeX0g4auskXOOl50iocm5sSbjW0cRC_teBBRkLkLfTmoKx83_CAkZM52bIaEbwwet4BZW9_HcJl_QpQHqCJ5Q&sai=AMfl-YSRnxWtZxydY33pg8aIp7QbXchZhZejg47hG-ua0Xqn_NEykNfewWJx__nUrz3Ig5Fh0MogXZ317Psz4tS7TK6E9-BxTEeFiZEWoPnfzepoR-F3hnt_SdDAP7K-qBf-Oozf-CtnaR_terXFwV4PsOEvOoO8O19f62sPLNlNuIwWyo6iFFwgRpEDMBglBtr2z43pqfkelU6VRS3raDY7SgQXn4UuHk8RBPfOcvImPB2PY01yVhhcd2i970pWvYAXhbyeFd4VcJjkjXNrVLTqjsFpigRUXutwTpUBLp7VVmk9e83X&sig=Cg0ArKJSzLgB74tETQeyEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20230109.23646&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
access-control-allow-origin: *
cache-control: private
content-type: image/gif
x-content-type-options: nosniff
date: Wed, 11 Jan 2023 08:38:49 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 11-Jan-2023 08:53:49 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 11 Jan 2023 08:38:49 GMT
X-Firefox-Spdy: h2
s0.2mdn.net/simgad/12772102099827087410
142.250.74.70200 OK 72 kB URL HTTP/2 s0.2mdn.net/simgad/12772102099827087410
IP 142.250.74.70:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.3 (Macintosh), datetime=2022:06:08 17:35:44], baseline, precision 8, 728x90, components 3\012- data
Hash 1bf848531dde4f6dc802da03b21ec587
03e451dd6b42d108df1183b6d7918fcfa42721d2
e373df645e2ea6de600c4d9f645d8d9197d8b24082c728c19205c6214fe26904
GET /simgad/12772102099827087410 HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 72013
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:19:26 GMT
expires: Sat, 06 Jan 2024 16:19:26 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 16 Dec 2022 14:38:10 GMT
content-type: image/jpeg
age: 404363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f8395eadf53bcf58328ffa636f943a44
47ffbf341873e182b5e1494033f1962c689c854a
ada129a2cb61c44093addd356a3d038fdb2e6346174bd2c40824e3193fe13928
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 08:38:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssLRIqAM3NzQJtvPSF6ICRwqOT5zO3X5RZy1iRAygNIr5pFhIgCfYMDpFs0-pVRzteOg3_7o-UGYFNlea1FBFutUAn0VcveR6VPbMjoEDi5Y7Izm9yI_YW3a_2C-uewFcDXEByPae1sdVeKQeBn9R5hbYn26QIXWw9TKDQUeWw8p61eHRD3WTEIpdGsnYuuA0Vcc69P-yNSwb7apuPl6BWY6qp-jrzMaEpmRQ3KcjgREnuzqjd-UB0mlh3igr_zX6Xws4S8nqP-UwwX2DNbYqDQ9C6nTH_3n-MyyGtlMDVNkJ91g380ESQuUiZehKFKH5CmLrP3xD3lBo5SL4RwQJ5ObU8NvyiS5jFPUf6UmHYUzK4b8ogDXp6-mPm7iCmxUHQWHu0fxTvrdDui4uX2ClEyPa8kBARteM1T6_YvyHPp7-KI2qn0g_Q2ppAaFsH4G3mqckD2IW0io81T0vP6VdFOloP9zlxHWEfNq2Ys3M841_DcR2ARggrD-FzFj9HEHGYgnvBRHpsy-42OLGsY8wfyIYI5-6EZFZkcHhq9Uc8CJbk1dg4QkT4ag2WZ2FgFF1ktQLKJzxMIiAl8l2D9RnUDaXKOHNgv1DBcMExnL0sLDy3NJcAQPiQOxykLrKjn607h4nFggVnjzh85ioBz1pMGPl__srl5hSbOzjkJSHEs7VP2OoEZC8JNgUT35foHRdowFAdRjhtBhRPXau9ggE_nUbYjdqandPkqekGezIHN3G7hC54CInJtV-rdz-lQzaAhExc_cRjnWs-stu-3D-1V28eP-gXuFEVR6chwOhfGRm06pAwY6R-RRw4ZsTHf457AyR0tsSwPgiNhFLKhnhqDmBN1vtYcUZ5Zjo6Wq4XHR8ZiFdZUGrEbO14HId3otXWF8tWj3ACrDWn-fmuy9HUEbtJ34ywdR9A4LpJue2-QNc2oHT9FBmCK5NUGLWMvG4Odby1rfSvPIdcZa56sM9xDQWlD4AtYrBLMkq5YsVSp_sW0vrgT8WsZp0DEcvX_jDIuNGiNXw0OgkQgAZn2-lysAeeX0g4auskXOOl50iocm5sSbjW0cRC_teBBRkLkLfTmoKx83_CAkZM52bIaEbwwet4BZW9_HcJl_QpQHqCJ5Q&sai=AMfl-YSRnxWtZxydY33pg8aIp7QbXchZhZejg47hG-ua0Xqn_NEykNfewWJx__nUrz3Ig5Fh0MogXZ317Psz4tS7TK6E9-BxTEeFiZEWoPnfzepoR-F3hnt_SdDAP7K-qBf-Oozf-CtnaR_terXFwV4PsOEvOoO8O19f62sPLNlNuIwWyo6iFFwgRpEDMBglBtr2z43pqfkelU6VRS3raDY7SgQXn4UuHk8RBPfOcvImPB2PY01yVhhcd2i970pWvYAXhbyeFd4VcJjkjXNrVLTqjsFpigRUXutwTpUBLp7VVmk9e83X&sig=Cg0ArKJSzLgB74tETQeyEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=472&vt=11&dtpt=471&dett=2&cstd=0&cisv=r20230109.23646&arae=0&ftch=1&adurl=
216.58.207.194200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjssLRIqAM3NzQJtvPSF6ICRwqOT5zO3X5RZy1iRAygNIr5pFhIgCfYMDpFs0-pVRzteOg3_7o-UGYFNlea1FBFutUAn0VcveR6VPbMjoEDi5Y7Izm9yI_YW3a_2C-uewFcDXEByPae1sdVeKQeBn9R5hbYn26QIXWw9TKDQUeWw8p61eHRD3WTEIpdGsnYuuA0Vcc69P-yNSwb7apuPl6BWY6qp-jrzMaEpmRQ3KcjgREnuzqjd-UB0mlh3igr_zX6Xws4S8nqP-UwwX2DNbYqDQ9C6nTH_3n-MyyGtlMDVNkJ91g380ESQuUiZehKFKH5CmLrP3xD3lBo5SL4RwQJ5ObU8NvyiS5jFPUf6UmHYUzK4b8ogDXp6-mPm7iCmxUHQWHu0fxTvrdDui4uX2ClEyPa8kBARteM1T6_YvyHPp7-KI2qn0g_Q2ppAaFsH4G3mqckD2IW0io81T0vP6VdFOloP9zlxHWEfNq2Ys3M841_DcR2ARggrD-FzFj9HEHGYgnvBRHpsy-42OLGsY8wfyIYI5-6EZFZkcHhq9Uc8CJbk1dg4QkT4ag2WZ2FgFF1ktQLKJzxMIiAl8l2D9RnUDaXKOHNgv1DBcMExnL0sLDy3NJcAQPiQOxykLrKjn607h4nFggVnjzh85ioBz1pMGPl__srl5hSbOzjkJSHEs7VP2OoEZC8JNgUT35foHRdowFAdRjhtBhRPXau9ggE_nUbYjdqandPkqekGezIHN3G7hC54CInJtV-rdz-lQzaAhExc_cRjnWs-stu-3D-1V28eP-gXuFEVR6chwOhfGRm06pAwY6R-RRw4ZsTHf457AyR0tsSwPgiNhFLKhnhqDmBN1vtYcUZ5Zjo6Wq4XHR8ZiFdZUGrEbO14HId3otXWF8tWj3ACrDWn-fmuy9HUEbtJ34ywdR9A4LpJue2-QNc2oHT9FBmCK5NUGLWMvG4Odby1rfSvPIdcZa56sM9xDQWlD4AtYrBLMkq5YsVSp_sW0vrgT8WsZp0DEcvX_jDIuNGiNXw0OgkQgAZn2-lysAeeX0g4auskXOOl50iocm5sSbjW0cRC_teBBRkLkLfTmoKx83_CAkZM52bIaEbwwet4BZW9_HcJl_QpQHqCJ5Q&sai=AMfl-YSRnxWtZxydY33pg8aIp7QbXchZhZejg47hG-ua0Xqn_NEykNfewWJx__nUrz3Ig5Fh0MogXZ317Psz4tS7TK6E9-BxTEeFiZEWoPnfzepoR-F3hnt_SdDAP7K-qBf-Oozf-CtnaR_terXFwV4PsOEvOoO8O19f62sPLNlNuIwWyo6iFFwgRpEDMBglBtr2z43pqfkelU6VRS3raDY7SgQXn4UuHk8RBPfOcvImPB2PY01yVhhcd2i970pWvYAXhbyeFd4VcJjkjXNrVLTqjsFpigRUXutwTpUBLp7VVmk9e83X&sig=Cg0ArKJSzLgB74tETQeyEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=472&vt=11&dtpt=471&dett=2&cstd=0&cisv=r20230109.23646&arae=0&ftch=1&adurl=
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjssLRIqAM3NzQJtvPSF6ICRwqOT5zO3X5RZy1iRAygNIr5pFhIgCfYMDpFs0-pVRzteOg3_7o-UGYFNlea1FBFutUAn0VcveR6VPbMjoEDi5Y7Izm9yI_YW3a_2C-uewFcDXEByPae1sdVeKQeBn9R5hbYn26QIXWw9TKDQUeWw8p61eHRD3WTEIpdGsnYuuA0Vcc69P-yNSwb7apuPl6BWY6qp-jrzMaEpmRQ3KcjgREnuzqjd-UB0mlh3igr_zX6Xws4S8nqP-UwwX2DNbYqDQ9C6nTH_3n-MyyGtlMDVNkJ91g380ESQuUiZehKFKH5CmLrP3xD3lBo5SL4RwQJ5ObU8NvyiS5jFPUf6UmHYUzK4b8ogDXp6-mPm7iCmxUHQWHu0fxTvrdDui4uX2ClEyPa8kBARteM1T6_YvyHPp7-KI2qn0g_Q2ppAaFsH4G3mqckD2IW0io81T0vP6VdFOloP9zlxHWEfNq2Ys3M841_DcR2ARggrD-FzFj9HEHGYgnvBRHpsy-42OLGsY8wfyIYI5-6EZFZkcHhq9Uc8CJbk1dg4QkT4ag2WZ2FgFF1ktQLKJzxMIiAl8l2D9RnUDaXKOHNgv1DBcMExnL0sLDy3NJcAQPiQOxykLrKjn607h4nFggVnjzh85ioBz1pMGPl__srl5hSbOzjkJSHEs7VP2OoEZC8JNgUT35foHRdowFAdRjhtBhRPXau9ggE_nUbYjdqandPkqekGezIHN3G7hC54CInJtV-rdz-lQzaAhExc_cRjnWs-stu-3D-1V28eP-gXuFEVR6chwOhfGRm06pAwY6R-RRw4ZsTHf457AyR0tsSwPgiNhFLKhnhqDmBN1vtYcUZ5Zjo6Wq4XHR8ZiFdZUGrEbO14HId3otXWF8tWj3ACrDWn-fmuy9HUEbtJ34ywdR9A4LpJue2-QNc2oHT9FBmCK5NUGLWMvG4Odby1rfSvPIdcZa56sM9xDQWlD4AtYrBLMkq5YsVSp_sW0vrgT8WsZp0DEcvX_jDIuNGiNXw0OgkQgAZn2-lysAeeX0g4auskXOOl50iocm5sSbjW0cRC_teBBRkLkLfTmoKx83_CAkZM52bIaEbwwet4BZW9_HcJl_QpQHqCJ5Q&sai=AMfl-YSRnxWtZxydY33pg8aIp7QbXchZhZejg47hG-ua0Xqn_NEykNfewWJx__nUrz3Ig5Fh0MogXZ317Psz4tS7TK6E9-BxTEeFiZEWoPnfzepoR-F3hnt_SdDAP7K-qBf-Oozf-CtnaR_terXFwV4PsOEvOoO8O19f62sPLNlNuIwWyo6iFFwgRpEDMBglBtr2z43pqfkelU6VRS3raDY7SgQXn4UuHk8RBPfOcvImPB2PY01yVhhcd2i970pWvYAXhbyeFd4VcJjkjXNrVLTqjsFpigRUXutwTpUBLp7VVmk9e83X&sig=Cg0ArKJSzLgB74tETQeyEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=472&vt=11&dtpt=471&dett=2&cstd=0&cisv=r20230109.23646&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Wed, 11 Jan 2023 08:38:49 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 11-Jan-2023 08:53:49 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 11 Jan 2023 08:38:49 GMT
X-Firefox-Spdy: h2
t.6sc.co/img.gif?event=imp&mcid=84456&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=84456&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=84456&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "5e502814-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Fri, 21 Feb 2020 18:57:24 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be632701000062ce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
t.6sc.co/img.gif?event=imp&mcid=84455&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=84455&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=84455&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "60bb2e1b-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Sat, 05 Jun 2021 07:56:11 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be632b01000063ce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
t.6sc.co/img.gif?event=imp&mcid=93937&cb=3322313619&pid=185113251&cid=29134379
23.14.5.116200 OK 43 B URL HTTP/1.1 t.6sc.co/img.gif?event=imp&mcid=93937&cb=3322313619&pid=185113251&cid=29134379
IP 23.14.5.116:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /img.gif?event=imp&mcid=93937&cb=3322313619&pid=185113251&cid=29134379 HTTP/1.1
Host: t.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3c4b58884f0cf82cf1baa961a8e671c7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
ETag: "60bb2e1b-2b"
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Sat, 05 Jun 2021 07:56:11 GMT
Pragma: no-cache
Server: nginx/1.14.0 (Ubuntu)
X-Content-Type-Options: nosniff
Content-Length: 43
Date: Wed, 11 Jan 2023 08:38:49 GMT
Connection: keep-alive
Set-Cookie: 6suuid=1c985468597d00009975be633101000064ce1400; expires=Fri, 10-Jan-2025 08:38:49 GMT; path=/; domain=.6sc.co; SameSite=None; secure
Access-Control-Allow-Origin:
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531
IP 172.67.181.253:0
GET /css/public.css?id=a66d1b3f490ee5b9c79bc9f7135b2531 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: text/css
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=52548
etag: W/"63ac510a-cd44"
expires: Mon, 01 Jan 2024 10:59:13 GMT
last-modified: Wed, 28 Dec 2022 14:22:02 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 854372
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=btgAfVfJi88oh5lRRlPDzJCPw7qj1ezDVi8G15qWuj42oKdyxbSDW6hZ9FVknnC8cKNdgulUjEo7d%2Fgan1NmcTvu1%2BGmp4H1v848pEkINmagO8YfvN79oitPIhQreQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e68ecb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/up.js
104.16.133.22200 OK 0 B IP 104.16.133.22:0
GET /up.js HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 787c568eaffd0b45-OSL
age: 394
cache-control: max-age=1200,must-revalidate,stale-while-revalidate=3600
etag: W/"30cd4982b290dd406327b3dd39f1ea22-ssl-df"
link: <https://live.demand.supply/impl.v16.3.0.js>; rel=preload; as=script,<https://live.demand.supply/p4/v16-2-0/Y3V0dHkuYXBwLw==>; rel=preload; as=script
set-cookie: demandSupplyTi=f35d6198-dcb7-4d6e-aa1d-918c97bc674e; demandSupplyTc = null; demandSupplyTcI = null; SameSite=None; Secure; Max-Age=63072000
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=4391
timing-allow-origin: *
x-nf-request-id: 01GMX2WC7DDRK600SK19DPWQGC
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cutty.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1673424000
172.67.70.33200 OK 0 B URL HTTP/2 cutty.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1673424000
IP 172.67.70.33:0
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1673424000 HTTP/1.1
Host: cutty.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InR3Y1dBcC8waU5lY2JxQUdTQ29TU3c9PSIsInZhbHVlIjoiV0lRTkxwUkdoR0djeWJyYTAzbUVVdmVucC9wcVBXaGNSUTRPaWRKelhuMG9zcFZnVEIydUk3RGtDSEg3MWxKaVV1ZXlXU3prenVsNWNxcCtSRWVhcFVjTnhNcTM5MSt1L2FweW5EYitHaVFrRlMycEJCenZWbWU5YnEyMjBGUGciLCJtYWMiOiI4NmZlOWEyMTZkZGUyNDhkYzE2NTY2OGI3YzMyNWNlOThkYWQ5Njg3ZWZhNGM4ODUzOTA5ZGY3YjFjNzNkODkwIiwidGFnIjoiIn0%3D; cuty_session=eyJpdiI6IkZPdTdQL0paZkQ5WFBscUVIb2xyRFE9PSIsInZhbHVlIjoiZVhLVHJjWEMxcG8vSCtBTkxqcWVNYXlTeVFwci9kbmdXZDUrcjZhVnhOV1QvMVF5aUdINVFJSVhPR0xvMjVObldOZWpKWHJwaXpGRVZjUnRKVWV6RTVnam5RWnJFcDduTHA1VDdZa2h0Wm91WlorVHc1ZE9uVk1iSzVPL0FsUjMiLCJtYWMiOiI5MWEzZjYwOTM0YWU5MGIxMzUxYTMwZGJlZGMwMDU2MzYzYzk1M2Y1OGIzY2M4ZjU2NWJmZmMyMzA3NTQyM2VjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:47 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-control-type-options: nosniff
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vXDjk1haq%2Btr7sM%2FMyUJxRDvwplhuASapoddVad%2FWn09j4jcdYBxgkdGZyaG8%2BEQ%2F7pMh5oHAcvqT%2FchDtu%2BIqeSJsRYQpUh6EvvtC52Q9h6uOKIrCXUIHHyzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568fcd72fac4-OSL
content-encoding: br
X-Firefox-Spdy: h2
live.demand.supply/impl.v16.3.0.js
104.16.133.22200 OK 0 B URL HTTP/2 live.demand.supply/impl.v16.3.0.js
IP 104.16.133.22:0
GET /impl.v16.3.0.js HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Cookie: demandSupplyTi=f35d6198-dcb7-4d6e-aa1d-918c97bc674e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:47 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=2592000,immutable,stale-if-error=604800
cf-bgj: minify
cf-polished: origSize=74953
etag: W/"b19940580c70e30455a2254a785a8919-ssl-df"
timing-allow-origin: *
vary: Accept-Encoding
x-nf-request-id: 01GMX2V689ENQZTBQ4NFCNSXD1
cf-cache-status: HIT
age: 1707955
server: cloudflare
cf-ray: 787c568fe9080b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/x.svg
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/images/shared/x.svg
IP 172.67.181.253:0
GET /images/shared/x.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-d1"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 854372
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Utc0UlTbuIo%2Fs5fEEwZKTbzKhi5EwlTaE4gD8h9FwJnT2Z1znRiywH9TEcxR64%2F7VUVLYc5zkoaeRHw3SV%2FAs%2Brw9uPjGcmXWJxQ%2BOq55SY2O0OR41qYo0uMlDxmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e187db4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/js/public/links/first.js?id=65f22cda6f3ac024545d2f192f995543
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/js/public/links/first.js?id=65f22cda6f3ac024545d2f192f995543
IP 172.67.181.253:0
GET /js/public/links/first.js?id=65f22cda6f3ac024545d2f192f995543 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=24088
etag: W/"63b4a820-5e18"
expires: Wed, 03 Jan 2024 22:11:46 GMT
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 642252
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XKBDjq4sb4ct30fVSd2EEvWm%2BsmAwN0r5Ti2%2BK974KOIsJDx2qLLM7cwYgNiZOJIrL9%2FkpBP8zzqF7yh3JGkO1LHCJPdjmxRZrCWxUlorGpNZCfXhEmgYhDxgWVcRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e1875b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/ds.2.html
104.16.133.22200 OK 0 B URL HTTP/2 live.demand.supply/ds.2.html
IP 104.16.133.22:0
GET /ds.2.html HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cutty.app
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:47 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=2592000,immutable,stale-if-error=604800
timing-allow-origin: *
x-nf-request-id: 01GNH5VQZFAM2C77ABPCNY7JSA
cf-cache-status: HIT
age: 809103
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568fe90c0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/shared/burger.svg
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/images/shared/burger.svg
IP 172.67.181.253:0
GET /images/shared/burger.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-cf"
expires: Mon, 01 Jan 2024 10:59:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 854372
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lo67KlfFPtwuOyES1S1IQsCXCCQMGqIuzxL7a7cKOpTuHGGS7e%2FqmaYOb0dt%2FnOUp5VRNYLhpwOxsaD%2FewjL6Gxwc8GMtTdi75PYhS%2F1XKuu9%2F39LBzC8rIJZ6KyAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e187bb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-3.svg
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/images/public/step-3.svg
IP 172.67.181.253:0
GET /images/public/step-3.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-45b"
expires: Mon, 01 Jan 2024 10:59:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 854371
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AWsBrG2wEgKACP7k8vl1TsSz3o4rs2gDu1mz74wmkuAHwTMAMXt0FKjWRpuS8NYZxsYDPtiiRIpSmA%2BEaukd%2FtUa2LOmtJnZUoyjvWN9cV0ip2oo%2F7rUlxJ5QGoZLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e188bb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-2.svg
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/images/public/step-2.svg
IP 172.67.181.253:0
GET /images/public/step-2.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-607"
expires: Mon, 01 Jan 2024 10:59:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 854371
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eIOjfIVwSd9gXuPN5MfGeVeNjhNCF5xe%2BcJ%2Bg7Bnurc5PgN98WP2bzaPdUklem411m3sWdKh%2BgZ1Z0mgWVAlf7R%2FqmNRGfnw4aHiDoISDMzRZ4%2Boud%2FBQ42mkqlzGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e1889b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/js/layouts/base.js?id=50cc94b4edb2bab3a3ec978e93e19741
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/js/layouts/base.js?id=50cc94b4edb2bab3a3ec978e93e19741
IP 172.67.181.253:0
GET /js/layouts/base.js?id=50cc94b4edb2bab3a3ec978e93e19741 HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"63b4a820-1a0c5"
expires: Wed, 03 Jan 2024 22:11:46 GMT
last-modified: Tue, 03 Jan 2023 22:11:44 GMT
vary: Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 642227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gvV3xiJrGXj7gLbQO91Pq9QBrSXv%2BvR7mY1PDSBWim5LkiojTgR1rxVyuEvkGNSyudl%2Bg4hm2Zi9WiRZ3URy9TKIiq1KPH4y8hPv7jiVSqlu%2FijpKONPNOBDO0qS9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c568e68ebb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
live.demand.supply/p4/v16-2-0/Y3V0dHkuYXBwL01NWmQ3
104.16.133.22200 OK 0 B URL HTTP/2 live.demand.supply/p4/v16-2-0/Y3V0dHkuYXBwL01NWmQ3
IP 104.16.133.22:0
GET /p4/v16-2-0/Y3V0dHkuYXBwL01NWmQ3 HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Cookie: demandSupplyTi=f35d6198-dcb7-4d6e-aa1d-918c97bc674e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:47 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=3600, s-maxage=7200, stale-while-revalidate=3600, stale-if-error=84600
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568fe90a0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cuty.io/images/public/step-1.svg
172.67.181.253200 OK 0 B URL HTTP/2 cdn.cuty.io/images/public/step-1.svg
IP 172.67.181.253:0
GET /images/public/step-1.svg HTTP/1.1
Host: cdn.cuty.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:46 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Jan 2023 10:58:10 GMT
etag: W/"63b16742-658"
expires: Mon, 01 Jan 2024 10:59:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 854371
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FusCfHRzEW6LKwXq9DHxUsDqcjGQck3DSsa8jF87VDKcchu4dS9eZ9XXw2PDxLTeRkUP1rV3OvUhIa8DnmWp%2BWR%2FzriOWTRfzfSfENnmDKLyzHueiI67kygl5fVXaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c568e1887b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/esp.js
172.67.38.106200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/esp.js
IP 172.67.38.106:0
GET /api/1.0/esp.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cutty.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 08:38:48 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: br8ocj5fWmQgOqNy/Y5LiIH5q+MAwLmtxoIHmumKrdJnVOflpFk2DrvLlhRMxH1N156iQZCmWrRJmSpedVGlPA==
x-amz-request-id: 9KT5DTFKEWY7HC5S
last-modified: Thu, 24 Nov 2022 12:48:29 GMT
etag: W/"91dadf6b1eddd8d91a5cc2e3be5ea8cf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 776
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 787c56968e0c1c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2